practice wireless attacks

[Robin Wood <robin () freedomsoftware co uk>]

Hi
I'm starting playing with wireless attacks and a friend has agreed to
let me monitor his network. While testing we turn WEP off and run kismet
which finds his WAP fine. I can collect packets without any problems.

Here is the kismet report on the network:

Network 2: "testwap" BSSID: "00:0C:41:DD:AA:AA"
    Type     : infrastructure
    Carrier  : 802.11g
    Info     : "None"
    Channel  : 11
    WEP      : "No"
    Maxrate  : 54.0
    LLC      : 231
    Data     : 0
    Crypt    : 0
    Weak     : 0
    Dupe IV  : 0
    Total    : 231
    First    : "Sat Jul 23 21:51:05 2005"
    Last     : "Sat Jul 23 23:11:10 2005"
    Min Loc: Lat 90.000000 Lon 180.000000 Alt 0.000000 Spd 0.000000
    Max Loc: Lat -90.000000 Lon -180.000000 Alt 0.000000 Spd 0.000000
    Address found via TCP 192.168.1.10

He can connect to it fine through a windows box but when I try through
my linux box I can't do it.

Here are the commands I use to try to set it up:

iwconfig eth0 mode Managed 
iwconfig eth0 channel 11
iwconfig eth0 ap 00:0C:41:DD:AA:AA
iwconfig eth0 essid testwap
iwconfig eth0 enc off

which results in:

eth0      NOT READY!  ESSID:"testwap"  
          Mode:Managed  Channel:11  Access Point: 00:0C:41:DD:AA:AA   
          Tx-Power=31 dBm   Sensitivity=0/200  
          Retry min limit:0   RTS thr=0 B   Fragment thr=0 B   
          Encryption key:off
          Link Quality:0  Signal level:0  Noise level:0
          Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
          Tx excessive retries:0  Invalid misc:0   Missed beacon:0

this looks good to me, but when I try to bring up the interface:

ifconfig eth0 192.168.1.9 up

I get this then the term freezes:

SIOCSIFFLAGS: No such file or directory

I know that they ip of the WAP is 192.168.1.10 so I'm trying to get onto
the same subnet, can anyone suggest what I'm doing wrong?

I can connect to my own WAP fine but not his. Anyone got any ideas?

Robin